Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moodle Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2013-4524 - Vulnerability Database
Moodle

Moodle Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2013-4524

Medium
Reference: CVE-2013-4524
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2013-4524
Title: Moodle Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Overview:

Directory traversal vulnerability in repository/filesystem/lib.php in Moodle through 2.2.11 2.3.x before 2.3.10 2.4.x before 2.4.7 and 2.5.x before 2.5.3 allows remote authenticated users to read arbitrary files via a .. (dot dot) in a path.